06-25-2021 11:48 AM
We are implementing 2 factor authentication and it is failing intermittently when using security groups in the authentication profile. When we use "all" in the LDAP tree, it works like a champ. When we go to a single group, it fails with "user not in allow list" but when checking the user database, the user-id is listed. If we use the same authentication group without 2 factor it works every time as well. The timeout for 2 factor has been increased from 60 to 120 seconds. We are also getting the message from our 2 factor auth vendor every time. Although we get prompted twice.
Has anyone else had this issue as it was been a week working with support without progress?
06-30-2021 12:45 AM - edited 06-30-2021 12:49 AM
do you mean 2 factor as in pin/password and passcode or 2 factor as in password and certificate?
is your user database local or ldap?
06-30-2021 05:42 AM
It is a LDAP database. We are testing a solution related to what the LDAP server is sending over. So far so good.
06-30-2021 08:06 AM
so ldap is working?
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!